Half a million computers have been infected with Downloader-UA.h trojan since the beginning of May which has prompted McAfee to declare the latest Trojan threat the most significant malware threat since 2005. This has also been verified by other anti-virus vendors as a security risk.

It consists of a malicious MPEG or MP3 file which has been propagated through P2P networking sites and has inflicted major damage.

It uses different file sizes, different languages and different formats to fool individuals into running the software, and any attempt to play the file will result in ads being served to the infected computer.

File sizes vary as do the file names. Here are some of the samples file names:

preview-t-3545425-changing times earth wind .mp3
preview-t-3545425-girls aloud st trinnians.mp3
preview-t-3545425-heartbroken fast t2 ft jodie.mp3
t-3545425-dx vs randi orton 2007.mpg
t-3545425-para sayo freestyle.mp3
t-3545425-peanut butter jelly amende.mp3
t-3545425-stare at sun thrice.mp3

Any user attempting to load one of these MP3 and MPG files will not get the music/video they were hoping for, but get directed to download a file named PLAY_MP3.exe

If users agree to download and run PLAY_MP3.exe an End User License Agreement is displayed (EULA). Users accepting the terms of the EULA will have ‘FBrowsingAdvisor’ and ‘SurfingEnhancer’ installed as well as PlayMP3.exe which is a browser control

Download and install these two free programs:

Ad-Aware 2008 7.1.0.4 beta

a-squared Free

Turn off system restore - right click My Computer and select Properties, click the System restore Tab and tick the checkbox ‘Turn off System Restore on all drives’.

Reboot into Safe mode - keep tapping the F8 key and using the up and down arrows highlight Safe Mode then press ‘Enter’.

Run the two applications as well as any other anti-spyware, anti-trojan or anti-virus software you may have.

Empty the virus vaults and recycle bin. Restart in normal mode. Turn System Restore back on.

© Free PC Security 2008

Technorati Tags: Downloader-UA.h trojan, Malicious MPEG, Technology, PC Security, Free PC Security, Malicious MP3

AVG Free Edition is the well-known antivirus protection tool which is easy to download, install and use and offers protection against viruses and spyware.

AVG v7.5 will no longer be available after 31st May 2008, being replaced with v8. It is important that you update to this new version to maintain your level of protection. AVG 7.5 for Linux will still be available, download details click here.

Rapid virus database updates are available for the lifetime of the product, thereby providing the high level of detection capability that millions of users around the world trust to protect their computers.

Highlights include automatic update functionality, the AVG Resident Shield, which provides real-time protection as files are opened and programs are run, free Virus Database Updates for the lifetime of the product, and AVG Virus Vault for safe handling of infected files.

Version 8.0.1 adds integrated spyware protection and a new LinkScanner feature that gives users safety rankings for their Google, Yahoo, and MSN searches.

AVG Free provides the bare necessities, including a real-time shield to prevent infections, antivirus and antimalware wrapped up in one program, Version 8.0.1 adds integrated spyware protection and a new LinkScanner feature that gives users safety rankings for their Google, Yahoo, and MSN searches.

AVG Free is easy to use and has low system resource requirements which will not slow down your computer. Also included is an automatic update function, the AVG Resident Shield, which provides real-time protection as files are opened and programs are run, free Virus Database Updates for the lifetime of the product, and AVG Virus Vault for safe handling of infected files.

Free download click here

For installation and setup instructions click here.

Minimum System requirements:
Intel Pentium 300 MHz
30 MB free hard drive space (for installation)
256 MB RAM
Compatible with Windows Vista, Windows XP and Windows 2000

AVG Anti-Virus Free Edition is for private, non-commercial, single computer use only. AVG Free is available free of charge to home users for the life of the product.

© Free PC Security 2008
Technorati Tags: AVG Anti-Virus V.8, Free Tools, AntiVirus, Technology, PC Security, Free PC Security, AVG 7.5 Linux Version, AVG 7.5 To End

PKWare has made a basic version of its SecureZIP encryption utility available with a FREE full License.

SecureZIP Standard Version 11, available for free download, combines an archiving and encryption utility. This tool allows users to protect data on their hard drive or sent through email against theft and unauthorised access.

Free versions of personal firewall, anti-virus, anti-spyware, and spam filtering products have been released by a number of vendors. Suppliers make cut-down versions of their products with the aim of raising their profile and creating an opportunity to sell paid for products with a greater range of features.

PKWare said it was releasing a free-for-life version of its product in order to help try to bridge the gap in data protection products available to individual internet users. The release of a free version of the product marks the 20th anniversary of the firm.

SecureZIP Version 11 would normally cost $49.95, but for a limited time you can get it completely free.

Simply click the link below, enter a valid email address and you will receive an email containing a link for your download. That’s it! How simple do you want it?

Click here for your download

© Free PC Security 2008

Technorati Tags: SecureZIP Ver.11, Free Tools, Encryption, Technology, Data Protection, PC Security, Free PC Security

Hackers may be exploiting an unpatched hole to plant malicious code in Word docs and any system that opens them.

Be extra careful when opening documents in Windows, especially if they are Word files. Microsoft have warned that cyber criminals may be taking advantage of an unpatched flaw in the Windows operating system to install malicious software on a victim’s PC.

The reported attack, now being investigated by Microsoft, involves a malicious Word document, but there may also be other ways of exploiting the flaw.

Do not open or save Word files that you receive from untrusted sources or that you receive unexpectedly from trusted sources.

The flaw lies in the Jet Database Engine that is used by a number of products including MS Access. Microsoft is investigating whether other programs may also be exploited in this type of attack.

This kind of unpatched, “zero day” attack is always cause for concern.

Following its usual policy, Microsoft didn’t say when, or if it planned to patch the bug. In a statement sent to the press, the company did not rule out the possibility of an emergency patch being released ahead of its next set of security updates, which are expected on April 8.

Users of many versions of Word, including Word 2007, 2003, 2002 and 2000 are at risk, unless they are running Windows Vista or Windows Server 2003, Service Pack 2. Those two operating systems include a newer version of the Jet Database Engine that does not have the bug.

For technically savvy users this means that PCs with a version of the Msjet40.dll that is lower than 4.0.9505.0 are vulnerable.

There have been other reports of attacks targeting this database software. In December, the United States Computer Emergency Readiness Team warned that attackers were sending out malicious MS Access Database (.mdb) files in a similar type of attack. Security experts assumed that this exploit could have been based on a publicly reported flaw in the Jet Database Engine.

© Free PC Security 2008

Details have been released of a new Trojan  called Orkut.AT. At present this uses the Orkut social network to spread.

This is how it appears:

Initially, a profile appears in the user’s scrapbook which contains an image from a YouTube video of Giselle, a contestant in the Brazilian edition of the Big Brother reality TV show.  This is the bait to entice users to click the link.

Once clicked a message is displayed informing the user that the video cannot be played as it is missing a codec and  alink is provided to download the correct codec.

If users try to download the codec they will be downloading the Orkut.AT trojan to their computer, and very cleverly the trojan redirects users to a web page where thay will find the video.

Social networks are used by millions of people globally and they create their own communities online which is why the cyber-crooks are now turning their attention to them to spread their malicious programs.  For them it is an easy way to reach millions of people in a very short time period.

All computer users should ensure that they have up to date anti-virus and all patches installed.

As a precaution, do NOT click any links received though social networks, even though they might seem to come from reliable sources. Play safe and type them directly into the browser’s address bar.

Related posts:
Trojan and Worm remover
WinPatrol Freeware
LinkscannerLite

© Free PC Security 2008